To add a new security level for a certain domain only, you first have to disable that security level on root level,
and then enable it again on the appropriate lower level.
Create the new security level
The first step in adding a new security level is to create the new security level.
This is done as follows:
1.
Select
Root
on the
Policy domains
tab.
2.
Go to the
Settings
tab and select the
Firewall security levels
page.
3.
Click
Add
to add a new security level.
This opens the
Security level - Description
dialog box.
4.
Enter a name for the new security level, for example,
BrowserSecurity
.
You can also include a description in the
Description:
text box.
5.
Click
Finish
.
6.
Click
to save and distribute the policy.
Create rules for the new security level
The next step is to create rules for the new security level.
The associated rules for the new security level are created as follows:
1.
Go to the
Firewall rules
page.
2.
Select the
BrowserSecurity
Internet Shield security level you just created.
The
Firewall rules
table is empty when this security level is selected, because there are no associated
rules yet.
3.
Click
Add before
to add a rule that allows outbound HTTP traffic as the first one on the list.
This opens the
Firewall rule
wizard.
4.
Complete the
Firewall rule
wizard:
a) On the
Rule type
page select
Allow
as the rule type.
b) On the
Remote hosts
page select
Any remote host
to apply the rule to all Internet connections.
c) On the
Services
page select
HTTP
in the
Service
column to apply the rule to HTTP traffic.
d) On the
Services
page select
=>
in the
Direction
column to apply the rule to outbound connections
only.
e) On the
Advanced settings
page you can accept the default values.
f) Verify the new rule on the
Summary
page.
You can also add a descriptive comment for the rule; for example,
Allow outbound HTTP traffic
for browsing.
.
g) Click
Finish
.
5.
Click
Add after
to add a rule that denies all other traffic both ways as the last one on the list.
6.
Complete the
Firewall rule
wizard:
a) On the
Rule type
page select
Deny
as the rule type.
b) On the
Remote hosts
page select
Any remote host
to apply the rule to all connections.
c) On the
Services
page select
All traffic
in the
Service
column to apply the rule to all traffic.
d) On the
Services
page select
Both
in the
Direction
column to apply the rule to inbound and outbound
connections.
e) On the
Advanced settings
page you can accept the default values.
f) Verify the new rule on the
Summary
page.
You can also add a descriptive comment for the rule. For example,
Deny rest
.
F-Secure Client Security | Configuring Internet Shield |
91
Summary of Contents for ANTI-VIRUS FOR MICROSOFT EXCHANGE 9.00
Page 1: ...F Secure Client Security Administrator s Guide...
Page 2: ......
Page 8: ...8 F Secure Client Security TOC...
Page 44: ......
Page 62: ......
Page 86: ......
Page 114: ......
Page 118: ......
Page 135: ...Tammasaarenkatu 7 PL 24 00181 Helsinki Finland F Secure Client Security Virus information 135...
Page 148: ......
Page 158: ......